PCI credit card compliance

Background to PCI compliance

To prevent fraud and theft, the PCI Security Standards Council states that a company taking credit card numbers must comply with data storage rules. In pursuit of PCI compliance, many companies keep processes beyond the scope of PCI DSS.

Latest Information Supplement from PCI SSC March 2011: Protecting Telephone-based Payment Card Data

Recording calls while beyond the scope of PCI DSS

Retell enables companies to stay outside the scope of PCI Compliance:

Without installation or integration with your IT or phone systems, anyone taking credit card details over the phone can halt recording prior to taking the credit card numbers, then restart manually or automatically after the numbers have been stated, so that sensitive authentication data is never recorded, and so does not have to be removed.

With integration to your IT system, the recording of the call can be stopped automatically when the agent goes into the credit card details screen (such as an online bank browser) and restart recording once the agent leaves that screen.

Uniquely as a manufacturer of active telephony recording hardware, Retell can play a message to the caller, the agent or both to advise that recording has been stopped and restarted.

As one of the few manufacturers of call recording hardware and software Retell has the capabilities to adapt fo future changes in PCI requirements, regulations and the law; so making your investment future proof.